chatting.php
<script language="JavaScript" type="text/javascript">
function addSmiley(textToAdd){
document.formshout.pesanShout.value += textToAdd;
document.formshout.pesanShout.focus();
}
</script>
<link href="smiley/style.css" rel="stylesheet" type="text/css" />
<script type="text/javascript">
function MM_validateForm() { //v4.0
if (document.getElementById){
var i,p,q,nm,test,num,min,max,errors='',args=MM_validateForm.arguments;
for (i=0; i<(args.length-2); i+=3) { test=args[i+2]; val=document.getElementById(args[i]);
if (val) { nm=val.name; if ((val=val.value)!="") {
if (test.indexOf('isEmail')!=-1) { p=val.indexOf('@');
if (p<1 || p==(val.length-1)) errors+='- '+nm+' Haruslah memiliki nama @domain.\n';
} else if (test!='R') { num = parseFloat(val);
if (isNaN(val)) errors+='- '+nm+' Haruslah berupa angka.\n';
if (test.indexOf('inRange') != -1) { p=test.indexOf(':');
min=test.substring(8,p); max=test.substring(p+1);
if (num<min || max<num) errors+='- '+nm+' Haruslah angka antara '+min+' dan '+max+'.\n';
} } } else if (test.charAt(0) == 'R') errors += '- '+nm+' Haruslah diisi terlebih dahulu.\n'; }
} if (errors) alert('Maaf, Terjadi beberapa kesalahan masukan data :\n'+errors);
document.MM_returnValue = (errors == '');
} }
</script>
<iframe src="shoutbox.php" width="100%" height="250" border="1" solid></iframe><br /><br />
<table class='date' width='100%'>
<form name="formshout" action="" method="POST">
<tr>
<td width='10%' class="highlight2">Nama</td>
<td width='90%'><input name='namaShout' type=text class=shout id="namaShout" value="<?php echo $_SESSION["cnama"];?>" disabled size='21'></td></tr>
<tr>
<td width='10%' class="highlight2">Email</td>
<td><input name='emailShout' type=text class=shout id="emailShout" value="<?php echo $_SESSION["cemail"];?>" disabled size='21'></td></tr>
<tr>
<td width='10%' valign='top' class='highlight2'>Pesan</td>
<td><textarea name='pesanShout' class=shout id="pesanShout" style='width: 100%; height: 35px;'></textarea></td></tr>
<tr><td colspan='2'>
<a onClick="addSmiley(':-)')"><img src='smiley/1.gif'></a>
<a onClick="addSmiley(':-(')"><img src='smiley/2.gif'></a>
<a onClick="addSmiley(';-)')"><img src='smiley/3.gif'></a>
<a onClick="addSmiley(';-D')"><img src='smiley/4.gif'></a>
<a onClick="addSmiley(';;-)')"><img src='smiley/5.gif'></a>
<a onClick="addSmiley(';:D;')"><img src='smiley/6.gif'></a>
</td></tr>
<tr>
<td colspan=2>
<input name="SimpanShout" type="submit" class onclick="MM_validateForm('namaShout','','R','emailShout','','RisEmail','pesanShout','','R');return document.MM_returnValue" value='Kirim''"shout>
<input class="shout" type="reset" name="reset" value="Reset">
</td></tr>
</form>
</table>
<hr color="#e0cb91" noshade="noshade" />
<?php
if(isset($_POST["SimpanShout"])){
$nama = anti_injection($_SESSION["cnama"]);
$email = anti_injection($_SESSION["cemail"]);
$pesan = anti_injection($_POST["pesanShout"]);
$tgl_sekarang=date("Y-m-d");
$jam_sekarang=date("h:m:s");
$statusadabadwords = "none";
$badWords = array("sex","xxx","viagra","http","porn");// daftar bad words
for($i = 0; $i <= count($badWords)-1; $i++){if (!(strpos($pesan, $badWords[$i]) == false)){$statusadabadwords = "ada";break;}}
if ($statusadabadwords == "none"){
$sql="INSERT INTO `$tbshoutbox`(`nama`, `email`, `pesan`, `tanggal`, `status`) VALUES('$nama', '$email', '$pesan', '$tgl_sekarang $jam_sekarang','Y')";
$proses=process($conn,$sql);
if (empty($proses)){
echo "<script>alert('Data Gagal Disimpan, Silakan Cek Data Anda...'); document.location.href='?mnu=chatting';</script>\n";
}
else{die("<script>location.href='?mnu=chatting';</script>");}
}//statusadabadwords
else{echo "<script>alert('Maaf data Anda mengandung kata-kata tidak sopan');document.location.href='?mnu=chatting';</script>";}
}//ISSET
function anti_injection($data){
$filter = mysql_real_escape_string(stripslashes(strip_tags(htmlspecialchars($data,ENT_QUOTES))));
return $filter;
}
?>
++++++++++++++++++++++++++
<?php
session_start();
require_once"koneksi.php";
?>
<link href="smiley/style.css" rel="stylesheet" type="text/css" />
<?php
$sql="SELECT * FROM `$tbshoutbox` WHERE `status`='Y' ORDER BY `id` DESC LIMIT 10";
$arr=getData($conn,$sql);
foreach($arr as $d) {
$email= $d["email"];
$nama= $d["nama"];
$pesan= $d["pesan"];
$tanggal= $d["tanggal"];
$pesan = str_replace(":-)", "<img src=\"smiley/1.gif\">", $pesan);
$pesan = str_replace(":-(", "<img src=\"smiley/2.gif\">", $pesan);
$pesan = str_replace(";-)", "<img src=\"smiley/3.gif\">", $pesan);
$pesan = str_replace(";-D", "<img src=\"smiley/4.gif\">", $pesan);
$pesan = str_replace(";;-)", "<img src=\"smiley/5.gif\">", $pesan);
$pesan = str_replace(";:D;", "<img src=\"smiley/6.gif\">", $pesan);
echo "<span class='shout'><b><a href='mailto:$email' target='_blank'>$nama</a> : </b></span>";
echo "<span class=shout>$pesan</span><br />";
echo "<span class=date><font color='#6515ff'>".$tanggal."#</font></span>";
echo "<hr color='#e0cb91' noshade='noshade' />";
}
function getData($conn,$sql){
$rs=$conn->query($sql);
$rs->data_seek(0);
$arr = $rs->fetch_all(MYSQLI_ASSOC);
//foreach($arr as $row) {
// echo $row['nama_kelas'] . '*<br>';
//}
$rs->free();
return $arr;
}
?>
Download Code
Tidak ada komentar:
Posting Komentar